Vulnerabilities
Aggregated CVE / GHSA / KEV / OSV — filter by tag and category.
| ID | Title | |
|---|---|---|
| CVE-2013-7428 |
|
Vulnerability in dos (CVE-2013-7428)
vulnerability in dos (CVE-2013-7428). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9834 |
|
SQL Injection in wordpress (CVE-2017-9834)
SQL injection in wordpress (CVE-2017-9834). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12838 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-12838)
vulnerability in csrf (CVE-2017-12838). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12906 |
|
Cross-Site Scripting (XSS) in nexusphp-project (CVE-2017-12906)
cross-site scripting in nexusphp-project (CVE-2017-12906). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-3250 |
|
Information Disclosure in apache (CVE-2015-3250)
vulnerability in apache (CVE-2015-3250). Confidential information can be exposed externally.
|
| CVE-2017-12416 |
|
Cross-Site Scripting (XSS) in paloaltonetworks (CVE-2017-12416)
cross-site scripting in paloaltonetworks (CVE-2017-12416). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-9458 |
|
XXE (XML External Entity) in ssrf (CVE-2017-9458)
vulnerability in ssrf (CVE-2017-9458). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14172 |
|
Vulnerability in c (CVE-2017-14172)
vulnerability in c (CVE-2017-14172). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14173 |
|
Vulnerability in c (CVE-2017-14173)
vulnerability in c (CVE-2017-14173). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14174 |
|
Vulnerability in c (CVE-2017-14174)
vulnerability in c (CVE-2017-14174). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14175 |
|
Vulnerability in c (CVE-2017-14175)
vulnerability in c (CVE-2017-14175). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-6250 |
|
Information Disclosure in simple-php-captcha-project (CVE-2015-6250)
vulnerability in simple-php-captcha-project (CVE-2015-6250). Risk of unauthorized operations or information disclosure.
|
| CVE-2015-7241 |
|
XML External Entity (XXE) vulnerability in SAP Netweaver before 7.01.
XML External Entity (XXE) vulnerability in SAP Netweaver before 7.01.
|
| CVE-2016-3086 |
|
Information Disclosure in apache (CVE-2016-3086)
vulnerability in apache (CVE-2016-3086). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14145 |
|
SQL Injection in sqli (CVE-2017-14145)
SQL injection in sqli (CVE-2017-14145). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14146 |
|
Code Injection in helpdezk (CVE-2017-14146)
code injection in helpdezk (CVE-2017-14146). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14149 |
|
Vulnerability in c (CVE-2017-14149)
vulnerability in c (CVE-2017-14149). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14137 |
|
Vulnerability in c (CVE-2017-14137)
vulnerability in c (CVE-2017-14137). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14138 |
|
Vulnerability in c (CVE-2017-14138)
vulnerability in c (CVE-2017-14138). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14139 |
|
ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMSLImage in coders/msl.c.
ImageMagick 7.0.6-2 has a memory leak vulnerability in WriteMSLImage in coders/msl.c.
|
| CVE-2017-14123 |
|
Unrestricted File Upload in zohocorp (CVE-2017-14123)
vulnerability in zohocorp (CVE-2017-14123). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14118 |
|
OS Command Injection in eyesofnetwork (CVE-2017-14118)
OS command injection in eyesofnetwork (CVE-2017-14118). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14119 |
|
OS Command Injection in eyesofnetwork (CVE-2017-14119)
OS command injection in eyesofnetwork (CVE-2017-14119). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14120 |
|
Path Traversal in path-traversal (CVE-2017-14120)
path traversal in path-traversal (CVE-2017-14120). Confidential information can be exposed externally.
|
| CVE-2017-14121 |
|
Vulnerability in c (CVE-2017-14121)
vulnerability in c (CVE-2017-14121). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14122 |
|
Out-of-Bounds Read in c (CVE-2017-14122)
vulnerability in c (CVE-2017-14122). Confidential information can be exposed externally.
|
| CVE-2017-12871 |
|
Vulnerability in simplesamlphp (CVE-2017-12871)
vulnerability in simplesamlphp (CVE-2017-12871). Confidential information can be exposed externally.
|
| CVE-2017-12691 |
|
Vulnerability in c (CVE-2017-12691)
vulnerability in c (CVE-2017-12691). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12692 |
|
Vulnerability in c (CVE-2017-12692)
vulnerability in c (CVE-2017-12692). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-12693 |
|
Vulnerability in c (CVE-2017-12693)
vulnerability in c (CVE-2017-12693). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14105 |
|
Vulnerability in tomcat (CVE-2017-14105)
vulnerability in tomcat (CVE-2017-14105). Successful exploitation can lead to full system takeover.
|
| CVE-2017-10851 |
|
Vulnerability in fujixerox (CVE-2017-10851)
vulnerability in fujixerox (CVE-2017-10851). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12868 |
|
Vulnerability in simplesamlphp (CVE-2017-12868)
vulnerability in simplesamlphp (CVE-2017-12868). Successful exploitation can lead to full system takeover.
|
| CVE-2017-12869 |
|
Vulnerability in simplesamlphp (CVE-2017-12869)
vulnerability in simplesamlphp (CVE-2017-12869). Data can be tampered with by attackers.
|
| CVE-2014-8677 |
|
Code Injection in soplanning (CVE-2014-8677)
code injection in soplanning (CVE-2014-8677). Data can be tampered with by attackers.
|
| CVE-2015-7711 |
|
Cross-Site Scripting (XSS) in atutor (CVE-2015-7711)
cross-site scripting in atutor (CVE-2015-7711). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10508 |
|
Cross-Site Scripting (XSS) in phpthumb-project (CVE-2016-10508)
cross-site scripting in phpthumb-project (CVE-2016-10508). Risk of unauthorized operations or information disclosure.
|
| CVE-2016-10509 |
|
SQL Injection in sqli (CVE-2016-10509)
SQL injection in sqli (CVE-2016-10509). Successful exploitation can lead to full system takeover.
|
| CVE-2016-10510 |
|
Cross-Site Scripting (XSS) in kohanaframework (CVE-2016-10510)
cross-site scripting in kohanaframework (CVE-2016-10510). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14076 |
|
SQL Injection in sqli (CVE-2017-14076)
SQL injection in sqli (CVE-2017-14076). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14069 |
|
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the usernw array parameter to nowarn.php.
SQL Injection exists in NexusPHP 1.5.beta5.20120707 via the usernw array parameter to nowarn.php.
|
| CVE-2017-14070 |
|
Cross-Site Scripting (XSS) in nexusphp (CVE-2017-14070)
cross-site scripting in nexusphp (CVE-2017-14070). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14060 |
|
Vulnerability in c (CVE-2017-14060)
vulnerability in c (CVE-2017-14060). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-11158 |
|
Vulnerability in synology (CVE-2017-11158)
vulnerability in synology (CVE-2017-11158). Successful exploitation can lead to full system takeover.
|
| CVE-2017-13670 |
|
Vulnerability in blackcat-cms (CVE-2017-13670)
vulnerability in blackcat-cms (CVE-2017-13670). Data can be tampered with by attackers.
|
| CVE-2017-14048 |
|
Cross-Site Request Forgery (CSRF) in csrf (CVE-2017-14048)
vulnerability in csrf (CVE-2017-14048). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14049 |
|
Cross-Site Scripting (XSS) in blackcat-cms (CVE-2017-14049)
cross-site scripting in blackcat-cms (CVE-2017-14049). Risk of unauthorized operations or information disclosure.
|
| CVE-2017-14050 |
|
Unrestricted File Upload in blackcat-cms (CVE-2017-14050)
vulnerability in blackcat-cms (CVE-2017-14050). Successful exploitation can lead to full system takeover.
|
| CVE-2017-14035 |
|
CrushFTP 8.x before 8.2.0 has a serialization vulnerability.
CrushFTP 8.x before 8.2.0 has a serialization vulnerability.
|
| CVE-2017-14036 |
|
CrushFTP before 7.8.0 and 8.x before 8.2.0 has XSS.
CrushFTP before 7.8.0 and 8.x before 8.2.0 has XSS.
|